Privacy Policy

Privacy Policy & GDPR Compliance

1. Data Controller

The data controller is TRIO LINGUA, with registered office at Boris Kidric str. 154, 11308 Begaljica (Grocka), Belgrade, Serbia (hereinafter: “Company”, “we”, “us”).

For any questions regarding this Privacy Policy or the processing of personal data, you may contact us at:
info@triolingua.rs

2. Scope of This Policy

This Privacy Policy explains how we collect, use, store, and protect personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable local laws.

3. Categories of Personal Data

We may collect and process the following categories of personal data:

  • Identification data (name, surname)
  • Contact data (email address, phone number, address)
  • Billing and payment data
  • Course-related information (level, attendance, progress)
  • Technical data (IP address, device information, browser type)
  • Communication data (messages, inquiries)

Where necessary, we may also process identification documents for legal or administrative purposes.

4. Legal Basis for Processing

Personal data is processed on the following legal grounds:

  • Contractual necessity (e.g. course enrollment, service delivery)
  • Legal obligations (e.g. accounting, regulatory compliance)
  • Consent (e.g. marketing communications)
  • Legitimate interests (e.g. service improvement, fraud prevention, security)

5. Purposes of Processing

We process personal data for the following purposes:

  • Providing and managing language courses and services
  • Processing payments and issuing invoices
  • Communicating with users regarding services and updates
  • Managing customer support and inquiries
  • Improving website functionality and user experience
  • Ensuring IT security and preventing fraud
  • Complying with legal and regulatory obligations
  • Sending marketing communications (where consent is provided)

6. Data Sharing and Disclosure

Personal data may be shared with:

  • Service providers (e.g. payment processors, IT providers, hosting services)
  • Professional advisors (e.g. accountants, legal consultants)
  • Public authorities, where required by law

All third parties are contractually bound to process data in accordance with GDPR and applicable data protection laws.

We do not sell personal data or share it with third parties for their independent marketing purposes.

7. International Data Transfers

Personal data is primarily stored within the European Economic Area (EEA).

If data is transferred outside the EEA, such transfers will be carried out in compliance with GDPR, including the use of Standard Contractual Clauses (SCCs) or other appropriate safeguards.

8. Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations.

Retention periods may vary depending on the type of data, but generally do not exceed:

  • Contractual data: up to 10 years
  • Marketing data: until consent is withdrawn

9. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • Access control systems
  • Data encryption where applicable
  • Secure storage and restricted access
  • Regular monitoring and security updates

10. Automated Decision-Making

We do not use automated decision-making processes, including profiling, that produce legal or similarly significant effects on individuals.

11. Cookies and Non-Personal Data

We collect certain non-personal data (e.g. analytics, usage statistics) to improve our services.

For more information, please refer to our Cookie Policy.

12. Your Rights (GDPR)

You have the following rights under GDPR:

  • Right of access (Art. 15)
  • Right to rectification (Art. 16)
  • Right to erasure (“right to be forgotten”, Art. 17)
  • Right to restriction of processing (Art. 18)
  • Right to data portability (Art. 20)
  • Right to object (Art. 21)
  • Right to withdraw consent at any time (Art. 7)

To exercise your rights, please contact us at info@triolingua.rs.

13. Complaints

You have the right to lodge a complaint with a supervisory authority if you believe that your data has been processed unlawfully.

14. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices and recommend reviewing their policies.

15. Changes to This Policy

We reserve the right to update this Privacy Policy at any time. Any changes will be published on this page with an updated revision date.

16. Contact Information

For any questions or requests regarding this Privacy Policy, please contact:

TRIO LINGUA
VAT ID 115610046
Reg. No. 68496659

Boris Kidric str. 154,
11308 Begaljica (Grocka),
Belgrade, Serbia

info@triolingua.rs

Receive free resources

Unlock free resources to boost your learning — practical tips, vocabulary, and exercises designed to help you progress faster. Stay inspired and keep improving, wherever you are.

We care about the protection of your data. Read our Privacy Policy.

Information
Services
Follow Us
©2026 TrioLingua. All rights reserved.